Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-user

From: Raphael Melo de Oliveira Bastos Sales <raphael.melo21@×××××.com>
To: gentoo-user@l.g.o
Subject: [gentoo-user] LDAP + Samba as PDC
Date: Mon, 13 Nov 2006 00:39:14
Message-Id: 8f7a9d580611121635m2bf1d0b4j37d59495c3d7f7e0@mail.gmail.com
1 Hi everyone,
2
3 I've been trying to set up an authentication server for a mixed LAN
4 (Windows and Linux clientes ) and I'm having problems with Samba.
5
6 The way it is today, the Windows clients can access the Samba
7 server and each user can access it's home, by double-clicking on the
8 server icon on the screen that shows all the machines on the network.
9
10 But I'm unable to register the client workstations on the server.
11 It says something like "user name not found" when I try to do it. But
12 the odd thing is, when I look in the LDAP server, there is a registry
13 of the client there.
14
15 I'd like to know if anyone has managed to do this type of thing
16 and, if possible, could send me the Samba config file (smb.conf) so I
17 can see what I'm doing wrong.
18
19 Here is my smb.conf file. If anyone detects what I'm doing wrong,
20 I'd be grateful. :)
21
22 [global]
23 server string = %L
24 workgroup = WORKGROUP
25 announce as = NT Server
26
27 hosts allow = 192.168.0.0/24
28 security = user
29 encrypt passwords = yes
30 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
31 interfaces = lo eth1
32 bind interfaces only = yes
33
34 local master = yes
35 os level = 100
36 domain master = yes
37 preferred master = yes
38
39 null passwords = no
40 #hide unreadable = yes
41
42 enable privileges = yes
43
44 domain logons = yes
45 logon script = login.bat
46 logon path = \\%L\profiles\%U
47 logon drive = H:
48 logon home = \\%L\%U\.9xprofile
49
50 wins support = yes
51 name resolve order = wins lmhosts host bcast
52 dns proxy = no
53
54 time server = yes
55 log file = /var/log/samba/log.%m
56 max log size = 50
57
58 passdb backend = ldapsam:ldaps://127.0.0.1:636/
59
60 ldap admin dn = cn=Laboratorio,dc=lara,dc=cic,dc=unb,dc=br
61 ldap port = 636
62 ldap suffix = dc=lara,dc=cic,dc=unb,dc=br
63 ldap server = ldaps://127.0.0.1:636/
64 ldap machine suffix = ou=Computers
65 ldap user suffix = ou=Users
66 ldap group suffix = ou=Groups
67 ldap idmap suffix = ou=Idmap
68 ldap delete dn = Yes
69 ldap password sync = yes
70
71 add group script = /usr/sbin/smbldap-groupadd -p "%g"
72 add machine script = /usr/sbin/smbldap-useradd -w "%u"
73 add user script = /usr/sbin/smbldap-useradd -m "%u"
74 add user to group script = /usr/sbin/smbldap-groupmod -m "%u" "%g"
75 delete group script = /usr/sbin/smbldap-groupdel "%g"
76 delete user script = /usr/sbin/smbldap-userdel "%u"
77 delete user from group script = /usr/sbin/smbldap-groupmod -x "%u" "%g"
78 passwd program = /usr/sbin/smbldap-passwd
79 passwd chat = "*New password:*" %n\r "*New password (again):*" %n\r \
80 "*Password changed*"
81 set primary group script = /usr/sbin/smbldap-usermod -g "%g" "%u"
82
83 idmap backend = ldap:ldaps://127.0.0.1:636/
84 idmap uid = 10000-20000
85 idmap gid = 10000-20000
86
87 unix charset = ISO8859-1
88
89 profile acls = yes
90
91 [netlogon]
92 path = /var/lib/samba/netlogon
93 guest ok = no
94 read only = yes
95 browseable = no
96
97 [profiles]
98 path = /var/lib/samba/profiles
99 browseable = no
100 writeable = yes
101 default case = lower
102 preserve case = no
103 short preserve case = no
104 case sensitive = no
105 hide files = /desktop.ini/ntuser.ini/NTUSER.*/
106 write list = @smbusers @root
107 create mask = 0600
108 directory mask = 0700
109 csc policy = disable
110
111 [homes]
112 path = /home/%U
113 browseable = no
114 valid users = %S
115 read only = no
116 guest ok = no
117 inherit permissions = yes
118 --
119 gentoo-user@g.o mailing list

Replies

Subject Author
Re: [gentoo-user] LDAP + Samba as PDC Cameron Lowe <cameron@×××××××××××.com>
Report Message
Find on MARC Find on Google Groups